OK, so I followed the instructions you provideed, and managed to eliminate some of the problems, it seems. Removed some things with Ewido, and a couple of things with HijackThis. Was unable to locate 04 - HKLM\..\Run: {dmffqkb} c:\windows\system32\ikzeilw.exe r but did find a similarly 04 - HKLM\..\ {maxstu} c:\windows\system 32\ikzeilw.exe r I suspect this will continue to change, and will have to be removed as well. I have been seeing svcproc.exe show up, only when my anti-virus software picks it up and moves it to the quarantine folder. I can't sem to find it when I go looking for it in the C drive. Also, in the C:\windows folder, I have found a file entitled nzpuabewvpr.exe, which is definitely associated with the ABI Networks software. Should i delete this?
Here is my HJT log:
Logfile of HijackThis v1.99.1
Scan saved at 3:23:19 PM, on 07/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
D:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
D:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\system32\sstray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
c:\windows\system32\hgdvyp.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\ewido\security suite\ewidoctrl.exe
D:\Program Files\Network Associates\Common Framework\FrameworkService.exe
D:\Program Files\Network Associates\VirusScan\mcshield.exe
D:\Program Files\Network Associates\VirusScan\vstskmgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\HJT\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.fark.com/O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-ca\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\en-ca\msntb.dll
O4 - HKLM\..\Run: [ShStatEXE] "D:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "D:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] D:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [ygpcws] c:\windows\system32\hgdvyp.exe r
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - Startup: Aliant.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://update.micros...b?1122330580921O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://www.pandasoft...free/asinst.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2409FC79-AF0A-47F0-8937-DBAB243E8DFD}: NameServer = 142.163.255.4 209.128.1.4
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - D:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - D:\Program Files\Network Associates\VirusScan\mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - D:\Program Files\Network Associates\VirusScan\vstskmgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
And, here's the results of the original Ewido scan:
---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------
+ Created on: 3:10:32 PM, 07/08/2005
+ Report-Checksum: E0B9060B
+ Scan result:
HKU\S-1-5-21-839522115-602609370-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{339BB23F-A864-48C0-A59F-29EA915965EC} -> Spyware.HuntBar : Ignored
HKU\S-1-5-21-839522115-602609370-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87067F04-DE4C-4688-BC3C-4FCF39D609E7} -> Spyware.WebSearch : Ignored
HKU\S-1-5-21-839522115-602609370-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87766247-311C-43B4-8499-3D5FEC94A183} -> Spyware.HuntBar : Ignored
HKU\S-1-5-21-839522115-602609370-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8952A998-1E7E-4716-B23D-3DBE03910972} -> Spyware.HuntBar : Ignored
:mozilla.11:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Atdmt : Ignored
:mozilla.13:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Doubleclick : Ignored
:mozilla.22:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Ignored
:mozilla.23:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Ignored
:mozilla.64:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.65:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.66:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.67:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.78:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Mediaplex : Ignored
:mozilla.97:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.98:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.99:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.100:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.101:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.102:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.103:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Trafficmp : Ignored
:mozilla.106:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.107:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.108:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.109:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.110:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.111:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.124:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Googleadservices : Ignored
:mozilla.142:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Hitbox : Ignored
:mozilla.157:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.158:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.159:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.160:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.161:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.162:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.163:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.164:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.166:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.167:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.168:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.169:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.170:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.171:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.172:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.173:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.174:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.175:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.176:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.177:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.178:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.179:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.180:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.181:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.182:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.183:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.184:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.186:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Ignored
:mozilla.187:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Fastclick : Ignored
:mozilla.188:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Fastclick : Ignored
:mozilla.189:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Fastclick : Ignored
:mozilla.193:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Adtech : Ignored
:mozilla.194:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Adtech : Ignored
:mozilla.215:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Ignored
:mozilla.217:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Ignored
:mozilla.218:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Ignored
:mozilla.220:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Valueclick : Ignored
:mozilla.235:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Adserver : Ignored
:mozilla.236:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Adserver : Ignored
:mozilla.237:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Excite : Ignored
:mozilla.238:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Excite : Ignored
:mozilla.239:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Excite : Ignored
:mozilla.250:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.276:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Ignored
:mozilla.277:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Ignored
:mozilla.278:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Ignored
:mozilla.279:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Ignored
:mozilla.283:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Googleadservices : Ignored
C:\Documents and Settings\Roanne Collins\Cookies\roanne collins@atdmt[2].txt -> Spyware.Cookie.Atdmt : Ignored
HKU\S-1-5-21-839522115-602609370-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{36A59337-6EEF-40AE-94B1-ED443A0C4740} -> Spyware.BetterInternet : Cleaned with backup
[872] c:\windows\system32\xoqizz.exe -> Adware.BetterInternet : Cleaned with backup
:mozilla.185:C:\Documents and Settings\Roanne Collins\Application Data\Mozilla\Firefox\Profiles\h5ziud8w.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Cookies\roanne collins@abetterinternet[2].txt -> Spyware.Cookie.Abetterinternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\AAG\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\EAE\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\FNU\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\FTY\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\IBG\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\ISZ\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\QGG\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\UNU\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\VEH\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\Local Settings\Temp\WIU\aurareco.exe -> Adware.BetterInternet : Cleaned with backup
C:\Documents and Settings\Roanne Collins\My Documents\WinRAR.v3.41.Final.Incl.Working.Key.exe/wrar341.exe -> TrojanDropper.Delf.fd : Error during cleaning
C:\Program Files\Microsoft AntiSpyware\Quarantine\13B4AC07-B246-4DB2-ACCD-90C3F5\2C97A6E2-ADD0-4A84-84EF-007BC3 -> Adware.BetterInternet : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\8ECB4871-9BD3-42E8-8049-EEFEF1\3BE727CE-0E06-4B21-821C-9C3C76 -> Adware.BetterInternet : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B3F28B72-844A-479A-8CEC-BFCEA8\7DFAED06-F8DB-4E4F-9DA1-97D571 -> Adware.BetterInternet : Cleaned with backup
C:\WINDOWS\oncobv.exe -> Adware.BetterInternet : Cleaned with backup
C:\WINDOWS\system32\xoqizz.exe -> Adware.BetterInternet : Cleaned with backup
::Report End